ISACA | – Cloud assurance compliance


ISACA is an independent, nonprofit, global association, ISACA engages in the development, adoption and use of globally accepted, industry-leading knowledge and practices for information systems.

They are most famous for the creation of the COBIT framework: Control Objectives for Information and related Technology. Currently, version 4.1 of the framework (published 2007) is used to manage IT processes within a service organisation.

COBIT 5.0 has been released in 2012 and is available for download at: (requires login)

Recently, ISACA released a document called “IT Control Objectives for Cloud Computing” (E-paper, $50). This document adds comments to the existing COBIT control objectives but relies heavily on the earlier texts written by NIST. Additionally, it is remarkable that not the COBIT 5.0 draft framework but the current COBIT 4.1 framework was used instead.